Merge pull request #294 from privy-open-source/feat/1.2.0

adenvt · web-flow · commit efb581d93a87 · 2025-04-15T14:28:57.000Z
release: `1.2.0`
diff --git a/README.md b/README.md
@@ -77,6 +77,7 @@ This module read enviroment variables directly.
 | OAUTH_REGISTER           | `false`                    | Add params register to Oauth Server                                                   |
 | OAUTH_REDIRECT_WHITELIST | -                          | Redirect path after success login whitelist, for multiple value, use `;` as delimeter |
 | OAUTH_DENIED_REDIRECT    | `Same as OAUTH_HOME`       | Redirect path after user after denying the authorization request                      |
+| OAUTH_AUTHORIZE_HOST     | `Same as OAUTH_HOST`       | Host for Authorization token                                                          |
 | OAUTH_AUTHORIZE_PATH     | `/oauth/authorize`         | URL path to request an authorization code                                             |
 | OAUTH_TOKEN_PATH         | `/oauth/token`             | URL path to obtain access tokens                                                      |
 | OAUTH_REVOKE_PATH        | `/oauth/revoke`            | URL path to revoke access tokens                                                      |
diff --git a/src/core/client.ts b/src/core/client.ts
@@ -10,6 +10,7 @@ export function getClient (profile: string) {
     auth: {
       tokenHost    : getEnv(profile, 'HOST'),
       tokenPath    : getEnv(profile, 'TOKEN_PATH'),
+      authorizeHost: getEnv(profile, 'AUTHORIZE_HOST'),
       authorizePath: getEnv(profile, 'AUTHORIZE_PATH'),
       revokePath   : getEnv(profile, 'REVOKE_PATH'),
       refreshPath  : getEnv(profile, 'REFRESH_PATH'),
diff --git a/src/core/redirect.ts b/src/core/redirect.ts
@@ -5,7 +5,6 @@ import {
   getHeader,
 } from 'h3'
 import { escape } from 'html-escaper'
-
 import type { CookieSerializeOptions } from 'cookie-es'
 
 /**
diff --git a/src/core/utils.ts b/src/core/utils.ts
@@ -1,4 +1,4 @@
-import { type H3Event } from 'h3'
+import { setHeader, type H3Event } from 'h3'
 import {
   decodePath,
   parseURL,
@@ -62,3 +62,9 @@ export function getRedirectUri (profile: string, event: H3Event): string {
 
   return withBase(redirectUrl, baseURL)
 }
+
+export function setNoCache (event: H3Event) {
+  setHeader(event, 'cache-control', 'no-cache, no-store, must-revalidate')
+  setHeader(event, 'pragma', 'no-cache')
+  setHeader(event, 'expires', '0')
+}
diff --git a/src/runtime/callback.ts b/src/runtime/callback.ts
@@ -16,6 +16,7 @@ import {
   getEnv,
   getHomeURL,
   getRedirectUri,
+  setNoCache,
 } from '../core/utils'
 import sendRedirectPage from '../core/redirect'
 import { getClient } from '../core/client'
@@ -67,6 +68,7 @@ export default defineEventHandler(async (event) => {
 
     // Remove temporary state
     deleteCookie(event, '_state')
+    setNoCache(event)
 
     await sendRedirectPage(event, withBase(homeURL, baseURL), cookieConfig)
   } catch (error) {
diff --git a/src/runtime/login.ts b/src/runtime/login.ts
@@ -7,7 +7,11 @@ import {
 } from 'h3'
 import { withQuery } from 'ufo'
 import { useRuntimeConfig } from '#imports'
-import { getEnv, getRedirectUri } from '../core/utils'
+import {
+  getEnv,
+  getRedirectUri,
+  setNoCache,
+} from '../core/utils'
 import { getClient } from '../core/client'
 
 export default defineEventHandler(async (event) => {
@@ -32,6 +36,7 @@ export default defineEventHandler(async (event) => {
 
     // Save temp state into cookie
     setCookie(event, '_state', state)
+    setNoCache(event)
 
     await sendRedirect(event, loginURL)
   } catch (error) {
diff --git a/src/runtime/logout.ts b/src/runtime/logout.ts
@@ -8,7 +8,11 @@ import {
 } from 'h3'
 import { withQuery } from 'ufo'
 import { useRuntimeConfig } from '#imports'
-import { getRedirectUri, getEnv } from '../core/utils'
+import {
+  getRedirectUri,
+  getEnv,
+  setNoCache,
+} from '../core/utils'
 
 export default defineEventHandler(async (event) => {
   const config  = useRuntimeConfig()
@@ -36,6 +40,7 @@ export default defineEventHandler(async (event) => {
 
   // Save temp state into cookie
   setCookie(event, '_state', state)
+  setNoCache(event)
 
   await sendRedirect(event, logoutUrl)
 })
diff --git a/src/runtime/refresh.ts b/src/runtime/refresh.ts
@@ -9,6 +9,7 @@ import defu from 'defu'
 import { useRuntimeConfig } from '#imports'
 import type { CookieSerializeOptions } from 'cookie-es'
 import { getClient } from '../core/client'
+import { setNoCache } from '../core/utils'
 
 export default defineEventHandler(async (event) => {
   try {
@@ -34,6 +35,7 @@ export default defineEventHandler(async (event) => {
     setCookie(event, `${profile}/token`, token, cookieConfig)
     setCookie(event, `${profile}/refresh-token`, refreshToken, cookieConfig)
     setCookie(event, `${profile}/expires`, expires.toISOString(), cookieConfig)
+    setNoCache(event)
 
     return {
       code   : 200,
